pool/openssl
SHA256
3
0
Fork 2
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 1142585 from security:tls

Browse Source 
- New libopenssl-fips-provider package.

- Remove a hack for bsc#936563
  bsc936563_hack.patch (bsc#936563)
- Build with no-ssl3, for details on why this is needed read
  require us to patch dependant packages as the relevant
  functions are still available (SSLv3_(client|server)_method)
- openssl.keyring: use Matt Caswells current key.
- openSSL 1.0.1j
- openssl.keyring: the 1.0.1i release was done by
- 012-Fix-eckey_priv_encode.patch eckey_priv_encode should
- 0001-Axe-builtin-printf-implementation-use-glibc-instead.patch
  it is already in RPM_OPT_FLAGS and is replaced by
- Remove the "gmp" and "capi" shared engines, nobody noticed
  but they are just dummies that do nothing.
- Use enable-rfc3779 to allow projects such as rpki.net
- openssl-buffreelistbug-aka-CVE-2010-5298.patch fix
- openssl-gcc-attributes.patch: fix thinko, CRYPTO_realloc_clean does
- openssl-gcc-attributes.patch
- additional changes required for FIPS validation( from Fedora repo)
- Remove GCC option "-O3" for compiliation issue of ARM version
  Modify files: README-FIPS.txt openssl.spec
  Add file: CVE-2013-6450.patch
- Fixed bnc#856687, openssl: crash when using TLS 1.2
  Add file: CVE-2013-6449.patch
- 0001-libcrypto-Hide-library-private-symbols.patch
  This patch is however not 100% complete, as some private library
  symbols are declared in public headers that shall not be touched
- openssl-1.0.1c-ipv6-apps.patch:
- Fix armv6l arch (armv7 was previously used to build armv6 which

OBS-URL: https://build.opensuse.org/request/show/1142585
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=170
This commit is contained in:
Ana Guerrero 2024-01-30 17:25:03 +00:00 committed by Git OBS Bridge
commit d5bc73df79
2 changed files with 113 additions and 95 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
openssl.changes
View File

@ -1,3 +1,8 @@
-------------------------------------------------------------------
Mon Jan 29 15:17:22 UTC 2024 - Pedro Monreal <pmonreal@suse.com>
- New libopenssl-fips-provider package.
------------------------------------------------------------------- -------------------------------------------------------------------
Tue Oct 24 14:55:05 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com> Tue Oct 24 14:55:05 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>

15
openssl.spec
View File

@ -1,7 +1,7 @@
# #
# spec file for package openssl # spec file for package openssl
# #
# Copyright (c) 2023 SUSE LLC # Copyright (c) 2024 SUSE LLC
# #
# All modifications and additions to the file contributed by third parties # All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed # remain the property of their copyright owners, unless otherwise agreed
@ -62,6 +62,16 @@ Provides: pkgconfig(openssl) = %{version}
This package contains all necessary include files and libraries needed This package contains all necessary include files and libraries needed
to develop applications that require these. to develop applications that require these.
%package -n libopenssl-fips-provider
Summary: Include Files and Libraries mandatory for Development
Group: Development/Libraries/C and C++
Requires: %{name} >= 3.0.0
Requires: libopenssl%{_sonum} >= 3.0.0
Requires: pkgconfig
%description -n libopenssl-fips-provider
This package contains OpenSSL FIPS provider.
%prep %prep
cp %{SOURCE0} . cp %{SOURCE0} .
@ -77,4 +87,7 @@ cp %{SOURCE0} .
%files -n libopenssl-devel %files -n libopenssl-devel
%doc README.SUSE %doc README.SUSE
%files -n libopenssl-fips-provider
%doc README.SUSE
%changelog %changelog